FKIE_CVE-2015-1358

Vulnerability from fkie_nvd - Published: 2015-02-18 02:59 - Updated: 2025-04-12 10:46
Severity ?
Summary
The remote-management module in the (1) Multi Panels, (2) Comfort Panels, and (3) RT Advanced functionality in Siemens SIMATIC WinCC (TIA Portal) before 13 SP1 and in the (4) panels and (5) runtime functionality in SIMATIC WinCC flexible before 2008 SP3 Up7 does not properly encrypt credentials in transit, which makes it easier for remote attackers to determine cleartext credentials by sniffing the network and conducting a decryption attack.
References
cve@mitre.orghttp://www.securityfocus.com/bid/72625
cve@mitre.orghttp://www.securitytracker.com/id/1036090
cve@mitre.orghttp://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-526760.pdf
cve@mitre.orghttp://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-543623.pdfVendor Advisory
cve@mitre.orghttps://ics-cert.us-cert.gov/advisories/ICSA-16-161-02US Government Resource
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/72625
af854a3a-2127-422b-91ae-364da2661108http://www.securitytracker.com/id/1036090
af854a3a-2127-422b-91ae-364da2661108http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-526760.pdf
af854a3a-2127-422b-91ae-364da2661108http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-543623.pdfVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://ics-cert.us-cert.gov/advisories/ICSA-16-161-02US Government Resource
Impacted products
Vendor Product Version
siemens wincc 13.0
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:siemens:wincc:13.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "70794E93-2FF5-4585-BC14-D2BB1357F361",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "The remote-management module in the (1) Multi Panels, (2) Comfort Panels, and (3) RT Advanced functionality in Siemens SIMATIC WinCC (TIA Portal) before 13 SP1 and in the (4) panels and (5) runtime functionality in SIMATIC WinCC flexible before 2008 SP3 Up7 does not properly encrypt credentials in transit, which makes it easier for remote attackers to determine cleartext credentials by sniffing the network and conducting a decryption attack."
    },
    {
      "lang": "es",
      "value": "El m\u00f3dulo de administraci\u00f3n remota en la funcionalidad (1) Multi Panels (2) Comfort Panels y (3) RT Advanced en Siemens SIMATIC WinCC (TIA Portal) en versiones anteriores a 13 SP1 y en la funcionalidad (4) panels y (5) runtime en SIMATIC WinCC flexible en versiones anteriores a 2008 SP3 Up7 no cifra correctamente las credenciales en tr\u00e1nsito, lo que hace que sea m\u00e1s f\u00e1cil a atacantes remotos determinar las credenciales en texto plano rastreando la red y llevando a cabo un ataque de descifrado."
    }
  ],
  "id": "CVE-2015-1358",
  "lastModified": "2025-04-12T10:46:40.837",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 5.0,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2015-02-18T02:59:07.813",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/bid/72625"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securitytracker.com/id/1036090"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-526760.pdf"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-543623.pdf"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "US Government Resource"
      ],
      "url": "https://ics-cert.us-cert.gov/advisories/ICSA-16-161-02"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/72625"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securitytracker.com/id/1036090"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-526760.pdf"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-543623.pdf"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "US Government Resource"
      ],
      "url": "https://ics-cert.us-cert.gov/advisories/ICSA-16-161-02"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-310"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.